Results 1 to 6 of 6
  1. 06-30-2012, 11:13 PM #1
    Firewall_Jackson
    Firewall_Jackson is offline
    Untangler
    Join Date
    May 2012
    Posts
    41

    Default Can tor be blocked?

    Can tor be blocked? I saw some old posts about this with no definite answer. But nothing more recent.
  2. 07-01-2012, 02:46 AM #2
    WebFooL
    WebFooL is offline
    Untangle Ninja
    WebFooL's Avatar
    Join Date
    Jan 2009
    Location
    Sweden (Eskilstuna)
    Posts
    4,205
    Send a message via MSN to WebFooL

    Default

    Hi Firewall_Jackson,

    The Application Control Module should be able to find and categoriese the TOR traffic.

    Here is a list of what it will see.
    http://wiki.untangle.com/index.php/A...plication_List

    And the wiki page for the module is here
    http://wiki.untangle.com/index.php/Application_Control
    "Of all the things I've lost, I miss my mind the most"
    Untangle Reseller (Sweden)
    WebFooL@fakenews.se
    http://fakenews.se/

    Need space to Upload content for you forum post?

    http://about.me/webfool
  3. 07-01-2012, 09:46 AM #3
    Firewall_Jackson
    Firewall_Jackson is offline
    Untangler
    Join Date
    May 2012
    Posts
    41

    Default

    Quote Originally Posted by WebFooL View Post
    Hi Firewall_Jackson,

    The Application Control Module should be able to find and categoriese the TOR traffic.

    Here is a list of what it will see.
    http://wiki.untangle.com/index.php/A...plication_List

    And the wiki page for the module is here
    http://wiki.untangle.com/index.php/Application_Control
    Thanks, but I neglected to mention that I do have the Application Control running with the TOR item blocked and flagged (not tar pitted). But TOR is able see a website that is on the webfilter's blacklist.
  4. 07-02-2012, 07:15 AM #4
    WebFooL
    WebFooL is offline
    Untangle Ninja
    WebFooL's Avatar
    Join Date
    Jan 2009
    Location
    Sweden (Eskilstuna)
    Posts
    4,205
    Send a message via MSN to WebFooL

    Default

    Tarpit is key when blocking some mean protocols.

    Tarpit will allow the session but destroy any information in it.
    So the TOR client will not try other methods.

    And check the Application Control event log so that you verify that it is even seeing the traffic and categorizing it correctly
    "Of all the things I've lost, I miss my mind the most"
    Untangle Reseller (Sweden)
    WebFooL@fakenews.se
    http://fakenews.se/

    Need space to Upload content for you forum post?

    http://about.me/webfool
  5. 07-02-2012, 11:09 AM #5
    Firewall_Jackson
    Firewall_Jackson is offline
    Untangler
    Join Date
    May 2012
    Posts
    41

    Default

    Quote Originally Posted by WebFooL View Post
    Tarpit is key when blocking some mean protocols.

    Tarpit will allow the session but destroy any information in it.
    So the TOR client will not try other methods.

    And check the Application Control event log so that you verify that it is even seeing the traffic and categorizing it correctly
    Great, thx!
  6. 08-07-2012, 12:41 PM #6
    Brian_D
    Brian_D is offline
    Untanglit
    Join Date
    Jul 2012
    Location
    Racine, WI
    Posts
    15

    Default Default Rule

    There is also a default rule under rules tab to tarpit all traffic that is classified as proxy. I think that would be the easiest thing to try first.
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


SEO by vBSEO 3.6.0 PL2